Revision as of 15:44, 25 June 2007

Welcome to the CLASP Project

CLASP (Comprehensive, Lightweight Application Security Process) provides a well-organized and structured approach for moving security concerns into the early stages of the software development lifecycle, whenever possible.

CLASP is actually a set of process pieces that can be integrated into any software development process. It is designed to be both easy to adopt and effective. It takes a prescriptive approach, documenting activities that organizations should be doing. And, it provides an extensive wealth of security resources that make implementing those activities reasonable.

The goals of the OWASP CLASP Project are to make these materials widely available as well as provide a forum for the community to contribute materials back to CLASP for the benefit of everyone. If you use CLASP now, have questions, or just have something else you'd like to share, give us a shout on the mailing list and let us know!

News

Enough should be up now to qualify as 'critical mass'. Thanks to Jeff, Jeremy, and others for the awesome work of getting the materials up on this site. (Pravir Chandra)

Get involved

Everyone has something to contribute. Be it reading materials and fixing typos to contributing new sections of prose, we gladly welcome all help that's volunteered. For the ongoing list of items in flight, please look at the OWASP CLASP Project Roadmap list. Also, if you're unsure of how to help or want some guidance, please check out the CLASP Project's mailing list.